$ rpki-client -vvf rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/3A87C676D85D11ECA651B731C4F9AE02.roa File: 3A87C676D85D11ECA651B731C4F9AE02.roa (raw, json) Hash identifier: opl+asT2CmW4VKKAfSWog8RuG8Qnh9dJzO9AuNAW7Ps= Subject key identifier: 0B:A6:50:92:C3:98:5C:A6:B3:E6:4C:39:29:CF:52:9B:AF:17:2F:3C Certificate issuer: /CN=A91676E2/serialNumber=3344A43960DC4A4773BB1DF0FF038DF4160F357A Certificate serial: 0197 Authority key identifier: 33:44:A4:39:60:DC:4A:47:73:BB:1D:F0:FF:03:8D:F4:16:0F:35:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/3A87C676D85D11ECA651B731C4F9AE02.roa Signing time: Wed 21 Jun 2023 04:12:39 +0000 ROA not before: Wed 21 Jun 2023 04:12:39 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 149806 IP address blocks: 103.186.216.0/24 maxlen: 24 103.186.217.0/24 maxlen: 24 2400:7520::/36 maxlen: 36 2400:7520:1000::/36 maxlen: 36 2400:7520:2000::/35 maxlen: 36 2400:7520:4000::/34 maxlen: 36 2400:7520:8000::/33 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.crl rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91676E2/serialNumber=3344A43960DC4A4773BB1DF0FF038DF4160F357A Validity Not Before: Jun 21 04:12:39 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=649278b7-cf41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a1:a5:db:27:b2:12:a2:c8:2f:a3:a0:36:5a: a2:ac:9c:11:a5:b4:0c:52:79:05:63:88:64:e7:2e: 81:de:5c:99:ff:90:23:01:46:6c:6d:83:c7:ed:d6: 8a:e6:a1:bc:08:a0:a2:56:82:62:1e:d6:7a:3f:97: 10:4f:6b:fb:1a:6f:74:7d:e3:5d:54:6a:62:94:6b: 46:7f:01:7b:24:f6:1f:4a:a5:91:ab:20:3c:62:ac: f5:1a:ae:19:f9:b7:f0:1f:c4:be:b0:e1:b6:67:ba: 5d:8f:8e:9a:cf:c7:7b:0b:89:d7:fb:48:d8:a0:e9: b7:da:17:41:6b:61:7c:a6:51:fb:bb:69:34:7f:bd: e4:78:ce:d2:09:70:93:3e:a4:63:01:a6:f9:43:a3: e1:bf:ee:2f:67:ac:16:a0:97:69:28:36:75:cf:66: fc:aa:8f:84:55:f1:ed:71:79:4f:14:47:9a:63:6b: 44:78:df:ce:d1:1f:bd:7e:c7:d5:f7:f3:e4:ef:55: 87:23:81:87:a2:32:da:d2:4c:76:d9:16:b5:b5:74: d4:ec:08:31:f2:1a:55:e8:0e:6f:af:b9:35:19:e3: 9d:45:c6:15:e5:aa:d1:ed:23:d5:68:d0:af:b6:a0: b5:01:31:1a:be:71:5a:a0:75:55:18:03:09:dc:37: 36:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:A6:50:92:C3:98:5C:A6:B3:E6:4C:39:29:CF:52:9B:AF:17:2F:3C X509v3 Authority Key Identifier: keyid:33:44:A4:39:60:DC:4A:47:73:BB:1D:F0:FF:03:8D:F4:16:0F:35:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/3A87C676D85D11ECA651B731C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.216.0/23 IPv6: 2400:7520::/32 Signature Algorithm: sha256WithRSAEncryption 35:d7:a6:b3:cf:b8:ed:be:51:7a:4b:12:8b:1a:1d:ef:80:ab: 88:50:d8:78:b1:0c:6c:11:bf:81:ee:0b:96:eb:62:3d:6b:84: 3a:d2:db:d9:6b:03:6d:43:05:13:29:d9:5c:6b:22:ae:9a:90: 54:e6:c7:11:d9:02:12:2a:5b:44:ee:55:b3:51:09:8a:ba:c3: d3:7a:11:15:7e:1d:34:3d:4e:47:c3:50:2b:01:d1:d7:23:97: f7:d7:fb:2b:62:2f:aa:0a:d7:13:a1:fd:e0:ff:83:bb:8d:e0: 5a:6f:de:9f:bd:c1:fb:be:2c:cd:7a:71:fa:20:75:50:35:e3: 59:5b:f1:96:36:9a:2b:de:5e:6a:22:51:98:d8:64:a9:83:05: 04:ef:fa:c7:fc:71:62:8c:0f:0d:12:28:9c:7f:ce:8e:f0:02: cf:fe:30:a4:9e:5f:65:1e:a9:b5:c1:12:7e:72:48:b0:88:a7: 68:ad:fa:dc:7b:88:2e:5c:ac:6e:a7:15:46:cd:56:a0:ab:e8: b3:8e:a4:de:8d:bb:31:aa:68:3a:f4:6e:f4:39:cf:5f:5f:77: 05:a2:44:a3:53:44:e7:00:e9:05:45:a5:42:e7:1d:2a:ff:23: 3f:59:f9:5d:ee:3b:62:e1:b6:5a:c9:aa:d4:1a:9d:11:91:08: 59:2a:02:e3 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njc2RTIxMTAvBgNVBAUTKDMzNDRBNDM5NjBEQzRBNDc3M0JCMURGMEZGMDM4REY0 MTYwRjM1N0EwHhcNMjMwNjIxMDQxMjM5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDkyNzhiNy1jZjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKGl2yeyEqLIL6OgNlqirJwRpbQMUnkFY4hk5y6B3lyZ/5AjAUZsbYPH7daK 5qG8CKCiVoJiHtZ6P5cQT2v7Gm90feNdVGpilGtGfwF7JPYfSqWRqyA8Yqz1Gq4Z +bfwH8S+sOG2Z7pdj46az8d7C4nX+0jYoOm32hdBa2F8plH7u2k0f73keM7SCXCT PqRjAab5Q6Phv+4vZ6wWoJdpKDZ1z2b8qo+EVfHtcXlPFEeaY2tEeN/O0R+9fsfV 9/Pk71WHI4GHojLa0kx22Ra1tXTU7Agx8hpV6A5vr7k1GeOdRcYV5arR7SPVaNCv tqC1ATEavnFaoHVVGAMJ3Dc2hQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAumUJLD mFyms+ZMOSnPUpuvFy88MB8GA1UdIwQYMBaAFDNEpDlg3EpHc7sd8P8DjfQWDzV6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzZFMi8yMjU5QTE4NkQ4 NTQxMUVDQjlFMUU0ODZDNEY5QUUwMi9NMFNrT1dEY1NrZHp1eDN3X3dPTjlCWVBO WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00wU2tPV0RjU2tkenV4M3dfd09OOUJZUE5Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njc2RTIvMjI1OUExODZEODU0MTFFQ0I5RTFFNDg2QzRGOUFFMDIvM0E4N0M2NzZE ODVEMTFFQ0E2NTFCNzMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnutgwDQQCAAIwBwMFACQAdSAwDQYJKoZIhvcNAQELBQAD ggEBADXXprPPuO2+UXpLEosaHe+Aq4hQ2HixDGwRv4HuC5brYj1rhDrS29lrA21D BRMp2VxrIq6akFTmxxHZAhIqW0TuVbNRCYq6w9N6ERV+HTQ9TkfDUCsB0dcjl/fX +ytiL6oK1xOh/eD/g7uN4Fpv3p+9wfu+LM16cfogdVA141lb8ZY2miveXmoiUZjY ZKmDBQTv+sf8cWKMDw0SKJx/zo7wAs/+MKSeX2UeqbXBEn5ySLCIp2it+tx7iC5c rG6nFUbNVqCr6LOOpN6NuzGqaDr0bvQ5z19fdwWiRKNTROcA6QVFpULnHSr/Iz9Z +V3uO2LhtlrJqtQanRGRCFkqAuM= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:17 2024 by rpki-client on console-ams.rpki-client.org